National Vulnerability Database

National Vulnerability Database

National Vulnerability
Database

CVE-2007-5503 Detail

Current Description

Multiple integer overflows in Cairo before 1.4.12 might allow remote attackers to execute arbitrary code, as demonstrated using a crafted PNG image with large width and height values, which is not properly handled by the read_png function.

Source:  MITRE      Last Modified:  11/29/2007      View Analysis Description

Quick Info

CVE Dictionary Entry:
CVE-2007-5503
Original release date:
11/29/2007
Last revised:
09/28/2017
Source:
US-CERT/NIST

Impact

CVSS Severity (version 2.0):
CVSS v2 Base Score:
6.8 MEDIUM
Vector:
(AV:N/AC:M/Au:N/C:P/I:P/A:P) (legend)
Impact Subscore:
6.4
Exploitability Subscore:
8.6
CVSS Version 2 Metrics:
Access Vector:
Network exploitable
Access Complexity:
Medium
Authentication:
Not required to exploit
Impact Type:
Allows unauthorized disclosure of information; Allows unauthorized modification; Allows disruption of service

References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to nvd@nist.gov.

Hyperlink Resource Type Source Name
http://bugs.gentoo.org/show_bug.cgi?id=200350 External Source CONFIRM http://bugs.gentoo.org/show_bug.cgi?id=200350
http://bugs.gentoo.org/show_bug.cgi?id=201860 External Source MISC http://bugs.gentoo.org/show_bug.cgi?id=201860
http://gitweb.freedesktop.org/?p=cairo;a=commitdiff;h=5c7d2d14d78e4dfb1ef6d2c40f0910f177e07360 External Source CONFIRM http://gitweb.freedesktop.org/?p=cairo;a=commitdiff;h=5c7d2d14d78e4dfb1ef6d2c40f0910f177e07360
http://gitweb.freedesktop.org/?p=cairo;a=commitdiff;h=e49bcde27f88e21d5b8037a0089a226096f6514b Exploit External Source CONFIRM http://gitweb.freedesktop.org/?p=cairo;a=commitdiff;h=e49bcde27f88e21d5b8037a0089a226096f6514b
http://gitweb.freedesktop.org/?p=cairo;a=commitdiff_plain;h=6020f67f1a49cfe3844c4938d4af24c63c8424cc;hp=c79fc9af334fd6f2d1078071d64178125561b187 External Source CONFIRM http://gitweb.freedesktop.org/?p=cairo;a=commitdiff_plain;h=6020f67f1a49cfe3844c4938d4af24c63c8424cc;hp=c79fc9af334fd6f2d1078071d64178125561b187
http://lists.grok.org.uk/pipermail/full-disclosure/2008-August/064118.html External Source FULLDISC 20080830 VMSA-2008-0014 Updates to VMware Workstation, VMware Player, VMware ACE, VMware Server, VMware ESX address information disclosure, privilege escalation and other security issues.
http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00003.html External Source SUSE SUSE-SR:2008:003
http://rhn.redhat.com/errata/RHSA-2007-1078.html Patch; Vendor Advisory External Source REDHAT RHSA-2007:1078
http://security.gentoo.org/glsa/glsa-200712-04.xml External Source GENTOO GLSA-200712-04
http://security.gentoo.org/glsa/glsa-201209-25.xml External Source GENTOO GLSA-201209-25
http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.362119 External Source SLACKWARE SSA:2007-337-01
http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0015 External Source CONFIRM http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0015
http://www.debian.org/security/2008/dsa-1542 External Source DEBIAN DSA-1542
http://www.gentoo.org/security/en/glsa/glsa-200712-24.xml External Source GENTOO GLSA-200712-24
http://www.mandriva.com/security/advisories?name=MDVSA-2008:019 External Source MANDRIVA MDVSA-2008:019
http://www.securityfocus.com/archive/1/archive/1/486405/100/0/threaded External Source BUGTRAQ 20080115 rPSA-2008-0015-1 cairo
http://www.securityfocus.com/archive/1/archive/1/495869/100/0/threaded External Source BUGTRAQ 20080830 VMSA-2008-0014 Updates to VMware Workstation, VMware Player, VMware ACE, VMware Server, VMware ESX address information disclosure, privilege escalation and other security issues.
http://www.securityfocus.com/bid/26650 External Source BID 26650
http://www.securitytracker.com/id?1019027 External Source SECTRACK 1019027
http://www.ubuntulinux.org/support/documentation/usn/usn-550-1 External Source UBUNTU USN-550-1
http://www.ubuntulinux.org/support/documentation/usn/usn-550-2 External Source UBUNTU USN-550-2
http://www.vmware.com/security/advisories/VMSA-2008-0014.html External Source CONFIRM http://www.vmware.com/security/advisories/VMSA-2008-0014.html
http://www.vmware.com/support/player2/doc/releasenotes_player2.html External Source CONFIRM http://www.vmware.com/support/player2/doc/releasenotes_player2.html
http://www.vmware.com/support/server/doc/releasenotes_server.html External Source CONFIRM http://www.vmware.com/support/server/doc/releasenotes_server.html
http://www.vmware.com/support/ws6/doc/releasenotes_ws6.html External Source CONFIRM http://www.vmware.com/support/ws6/doc/releasenotes_ws6.html
http://www.vupen.com/english/advisories/2007/4045 Vendor Advisory External Source VUPEN ADV-2007-4045
http://www.vupen.com/english/advisories/2008/2466 Vendor Advisory External Source VUPEN ADV-2008-2466
https://bugzilla.redhat.com/show_bug.cgi?id=387431 External Source CONFIRM https://bugzilla.redhat.com/show_bug.cgi?id=387431
https://exchange.xforce.ibmcloud.com/vulnerabilities/38771 External Source XF cario-readpng-bo(38771)
https://issues.rpath.com/browse/RPL-1966 External Source CONFIRM https://issues.rpath.com/browse/RPL-1966
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11251 External Source OVAL oval:org.mitre.oval:def:11251
https://www.redhat.com/archives/fedora-package-announce/2008-January/msg00630.html External Source FEDORA FEDORA-2007-3818

References to Check Content

Identifier:
oval:org.mitre.oval:def:11251
Check System:
http://oval.mitre.org/XMLSchema/oval-definitions-5
Hyperlink:
http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:11251

Technical Details

Vulnerability Type (View All)

Vulnerable software and versions Switch to CPE 2.2

Configuration 1
OR
cpe:2.3:a:redhat:cairo:*:*:*:*:*:*:*:*    versions up to (including) 1.4.10

Denotes Vulnerable Software
Are we missing a CPE here? Please let us know.

Change History 4 change records found - show changes